Vulnerability Name:

CVE-2010-2295 (CCN-59251)

Assigned:2010-06-08
Published:2010-06-08
Updated:2020-08-05
Summary:page/EventHandler.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 does not properly handle a change of the focused frame during the dispatching of keydown, which allows user-assisted remote attackers to redirect keystrokes via a crafted HTML document, aka rdar problem 7018610.
Note: this might overlap CVE-2010-1422.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-20
Vulnerability Consequences:Other
References:Source: CONFIRM
Type: Vendor Advisory
http://code.google.com/p/chromium/issues/detail?id=15766

Source: MITRE
Type: CNA
CVE-2010-2295

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update

Source: CONFIRM
Type: Vendor Advisory
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html

Source: SUSE
Type: Third Party Advisory
SUSE-SR:2011:002

Source: CCN
Type: SA40072
Google Chrome Multiple Vulnerabilities

Source: SECUNIA
Type: Third Party Advisory
40072

Source: SECUNIA
Type: Third Party Advisory
43068

Source: CONFIRM
Type: Permissions Required, Vendor Advisory
http://src.chromium.org/viewvc/chrome/branches/WebKit/375/WebCore/page/EventHandler.cpp?r1=48067&r2=48066

Source: CCN
Type: BID-40651
Google Chrome prior to 5.0.375.70 Multiple Security Vulnerabilities

Source: VUPEN
Type: Permissions Required
ADV-2011-0212

Source: CONFIRM
Type: Permissions Required
https://bugs.webkit.org/show_bug.cgi?id=26824

Source: MISC
Type: Issue Tracking, Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=552255

Source: XF
Type: UNKNOWN
google-chrome-keystroke-unspecified(59251)

Source: OVAL
Type: Third Party Advisory
oval:org.mitre.oval:def:12003

Source: SUSE
Type: SUSE-SR:2011:002
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 5.0.375.70)

    • Configuration CCN 1:
  • cpe:/a:google:chrome:4.0.249.78:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:4.0.249.89:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:4.1.249.1042:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:4.1.249.1036:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:4.1.249.1045:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:4.1.249.1059:*:*:*:*:*:*:*
  • OR cpe:/a:google:chrome:5.0.375.55:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20102295
    V
    		CVE-2010-2295
    2015-11-16
    oval:org.mitre.oval:def:12003
    V
    		Vulnerability in page/EventHandler.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70
    2013-08-12
    BACK
    google chrome *
    google chrome 4.0.249.78
    google chrome 4.0.249.89
    google chrome 4.1.249.1042
    google chrome 4.1.249.1036
    google chrome 4.1.249.1045
    google chrome 4.1.249.1059
    google chrome 5.0.375.55